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LISTING OF THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

1. (Currently Amended) A method for revocation of a signature certificate in a Public Key 
Infrastructure (FKI) cumprising: 

creating an authenticated secure chaimel with a registration web server; 
requesting the registration web server revoke a user signature certificate, the requesting 
occurring over the authenticated secure channel; 
revoking the user signature certificate; 

notifying a directory by the registration web server of revocation of the user signature 
certificate; and 

setting a user entry in the directory to a state v^thout a signature certificatCTiand 
notifying a personal revocation authority that a user has lost a user signatu re certificate. 
the notifying occxirring before the creating. 

2. (Original) The method according to claim 1, further comprising generating a directory 
password for the user during creation of the user signature certificate. 

3. (Original) The method according to claim 2, wherein the creating and requesting are initiated 
by the user. 
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4. (Original) The method according to claim 3, wherein the security of the user signature 
certificate has been potentially compromised. 

5. (Original) The method according to claim 3, further comprising sending the user one of a 
password and a personal identification number (PIN) by the registration web server after the 
setting of the user entry. 

6. (Original) The method according to claim 5, fiirther comprising requesting a new signature 
certificate by the user using the directory password and one of the password and the PIN. 

7. (Original) The method according to claim 3, further comprising using the user signature 
certificate to authenticate the user before the creating. 

8. (Canceled) 

9. (Currently Amended) The method according to claim 8, cMinl, wherein the creating and 
requesting are initiated by the personal registration authority. 

10. (Original) The method according to claim 9, further comprising requesting a personal 
registration authority's signature certificate to authenticate the personal registration authority 
before the creating. 
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11. (Original) The method according to claim 10, wherein the personal registration authority is a 
supervisor of the user. 

12. (Original) The method according to claim 10, further comprising querying the directory after 
the requesting the registration web server revoke the user signature certificate to determine if the 
personal registration authority is permitted to revoke the user signature certificate. 

13. (Original) The method according to claim 12, further comprising revoking the user signature 
certificate by the registration web server only if the personal registration authority is permitted to 
revoke the user signature certificate. 

14. (Original) The method according to claim 13, fiirther comprising generating a directory 
password for the user during creation of the user signature certificate. 

15. (Original) The method according to claim 14, further comprising sending the user one of a 
password and a personal identification number (PIN) by the registration web server after the 
setting of the user entry. 

16. (Original) The method according to claim 15, fiirther comprising requesting a new signature 
certificate by the user usmg the directory password and one of the password and the PIN. 
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17. (Original) The method according to claim 1, wherein the revoking is performed by the 
registration web server. 

18. (Currently Amended) A server comprising a storage medium having instructions stored 
therein, the instructions when executed causing a processing device to perform: 

creating an authenticated secure channel between the server and an e ntit>^a personal 
registration authority ; 

receiving a request from the etrti ^ersonal revocation authoirty to revoke a user signature 
certificate; 

revoking the user signature certificate; and 

notifying a directory of revocation of the user signature certificate. 

19. (Currently Amended) The server according to claim 18, further comprising verifying the 
entit vpersonal registration authority is permitted to revoke the user signature certificate. 

20. (Currently Amended) The server according to claim 19, further comprising revoking the user 
signature certificate only if the entit vpersonal registration authority is permitted to revoke the 
user signature certificate. 



21. (Canceled) 
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22. (Canceled) 

23. (Currently Amended) A system for revocation of a signature certificate in a Public Key 
Infrastructure (PKI) comprising: 

at least one server operably connected to a network; 

a directory operably connected to the network, the directory containing information on at 
least one user; 

at least one client platform operably connected to the network, the at least one user 
having access to the at least one server from the at least one client platform; and 

a registration web server operably connected to the network, the registration web server 
receiving a request for revocation of a user signature certificate from an e ntitv. a personal 
revocation authority, the registration web server revoking the user signature certificate only if the 
entit vpersonal revocation authority is permitted to revoke the user signature certificate, the 
registration web server notifying the directory of revocation of the user signature certificate if 
revoked. 

24. (Original) The system according to claim 23, wherein the information on at least one user 
includes a user entry related to the user signature certificate, the directory setting the user entry 
in the directory to a state without a signature certificate if the user signature certificate is 
revoked. 
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25. (Currently Amended) The system according to claim 23, further comprising an authenticated 
secure channel between the entit vpersonal registration authority and the registration web server, 
the requesting occurring over the authenticated secure channel. 

26. (Canceled) 

27. (Canceled) 



28. (Currently Amended) The system according to claim 27 x laim 23, wherein the personal 
registration authority is a supervisor of the at least one user. 



